Thread: dns and packet filter
View Single Post
  #1 (permalink)  
Old 08-10-2001, 03:53 PM
eldorado eldorado is offline
Senior Member
  
Join Date: Feb 2001
Location: CH
Posts: 160
Default dns and packet filter
hello all

asl version is: 1.930

i tried to transfer my primary zone from dmz (192.168.x.x) to the dns-server (official ip-adress) at my isp, wehre the secondary zone is hostet.
Masquerading and snat rule is set.

following rule works:
DMZ_NET/ANY/ANY/ALLOW

but if i want to restrict to:
DMZ_NET/DNS/ANY/ALLOW

the zonetransfer does not work.
dns is static defined as tcp/udp 1024:65535 53

is there another port to open for zonetransfer? dns server are both win nt 4.

thanks a lot in advance
eldorado
Reply With Quote